Mageia: Security Advisory (MGASA-2017-0012)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES11 Security Update : xen (SUSE-SU-2016:2528-1) (Bunker Buster)

This update for xen fixes several issues. These security issues were fixed : - CVE-2016-7094: Buffer overflow in Xen allowed local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update bsc995792 - CVE-2016-7092: The getpagefroml3e...

[SECURITY] [DLA 571-1] xen security update

Package : xen Version : 4.1.6.lts1-1 CVE ID : CVE-2014-3672 CVE-2016-3158 CVE-2016-3159 CVE-2016-3710 CVE-2016-3712 CVE-2016-3960 CVE-2016-4480 CVE-2016-6258 Debian Bug : Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifi...

Debian DSA-3633-1 : xen - security update (Bunker Buster)

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-8338 Julien Grall discovered that Xen on ARM was susceptible to denial of service via long running memory operations. - CVE-2016-448...

OracleVM 3.4 : xen (OVMSA-2016-0088) (Bunker Buster)

The remote OracleVM system is missing necessary patches to address critical security updates : - BUILDINFO: commit=aff08b43b1a504aa14a0fce65302ccf515b69fdf - Remove unsafe bits from the modl?entry fastpath Andrew Cooper CVE-2016-6258 - x86/mm: fully honor PS bits in guest page table walks Jan...

[SECURITY] [DSA 3633-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3633-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 27, 2016 https://www.debian.org/security/faq -...

DSA-3633-1 xen - security update

Bulletin has no description...

Fedora 22 : xen (2016-8fd9019541)

in systemd only try to load kernel modules that are in Fedora 1291089 x86 software guest page walk PS bit handling flaw XSA-176, CVE-2016-4480 1332657 ---- create link to /usr/bin/qemu-system-i386 from /usr/lib/xen/bin for back compatibility and for virt-manager, cleaner fix for XSA-179 on...

Fedora 24 : xen (2016-5d5a8bfbc5)

xen no longer crashes when built without -fno-tree-coalesce-vars, in systemd only try to load kernel modules that are in Fedora, x86 software guest page walk PS bit handling flaw XSA-176, CVE-2016-4480 Note that Tenable Network Security has extracted the preceding description block directly from...

CVE-2016-4480

CVE-2016-4480 affects Xen 4.6.x and earlier. The vulnerability in arch/x86/mm/guest_walk.c mishandles the PS bit in L3/L4 Page Tables, potentially enabling local guest OS users to gain privileges via a crafted memory mapping. Exploitation is local with low complexity; impact is privilege escalati...